Closed Bug 1831304 Opened 2 years ago Closed 2 years ago

nsContentUtils::ShouldResistFingerprinting() will hit an assertion if the loading principal is system

Categories

(Core :: Security, defect)

Product:
Core
Component:
Security
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
115 Branch
Tracking Flags:
Tracking Status
firefox115 --- fixed

People

(Reporter: timhuang, Assigned: timhuang)

References

(Blocks 1 open bug)

Details

Crash Data

Attachments

(1 file)

Bug 1831304 - Don't check originAttributes for the system principal in nsContentUtils::ShouldResistFingerprinting(). r?tjr!
48 bytes, text/x-phabricator-request
Details | Review

We have removed the system principal check in nsContentUtils::ShouldResistFingerprinting() in Bug 1824433 because the check is redundant and we do the check in nsContentUtils::ShouldResistFingerprinting_dangerous().

However, we will hit the assertion after Bug 1824433 if we the loading principal is system because the system principal doesn't have originAttributes. So, the assertion will always fail.

We should exclude the system principal from this check.

Pushed by tihuang@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/ad1f49f09ac0 Don't check originAttributes for the system principal in nsContentUtils::ShouldResistFingerprinting(). r=tjr

https://hg.mozilla.org/mozilla-central/rev/ad1f49f09ac0

Status: ASSIGNED → RESOLVED
Closed: 2 years ago
status-firefox115: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 115 Branch
Duplicate of this bug: 1827008

Copying crash signatures from duplicate bugs.

Crash Signature: [@ libxul.so + 0x0000000001144b3f] [@ nsContentUtils::ShouldResistFingerprinting]
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: